Hijacked email address.
kent at songbird.com
kent at songbird.com
Thu Apr 17 18:23:43 UTC 2008
On Thu, Apr 17, 2008 at 01:31:49PM -0400, Ugo Bellavance wrote:
> >There is NO way to prevent people from forging your name to the From: line
> >on an e-mail message.
>
> False.
No, it's true. There is no way to prevent people from forging the From:
header.
> SPF can help. DomainKeys can help.
These things help detect forgeries after the fact, but they don't do
anything to prevent forgeries in the From: line. They aren't designed for
that purpose.
> Some other mechanisms like
> watermarking in MailScanner, and there is also something called EMEW in
> BarricadeMX (http://www.fsl.com/barricademx.html). There might be other
> means, I only know those.
>
> For SPF and DomainKeys, it depends on the proportion of mail servers
> that check them.
>
> For the 2 others, it assumes that all of your outgoing mail is going
> through the MailScanner/BarricadeMX system(s)
A forged email can come from any server in the world.
Best Regards
Kent
More information about the redhat-list
mailing list